Freshclam: Unterschied zwischen den Versionen

Aus Foxwiki
K Textersetzung - „Man-Pages“ durch „Man-Page“
 
(12 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt)
Zeile 33: Zeile 33:
| || --config-file=FILE || Read configuration from FILE.
| || --config-file=FILE || Read configuration from FILE.
|-
|-
| -l FILE || --log=FILE || Log report to FILE.
| -l FILE || --log=FILE || Log report to FILE.
|-
|-
| -d || --daemon || Run in a daemon mode. Defaults to 12 checks per day unless otherwise specified by --checks or freshclam.conf.
| -d || --daemon || Run in a daemon mode. Defaults to 12 checks per day unless otherwise specified by --checks or freshclam.conf.
Zeile 41: Zeile 41:
| -F || --foreground || Don't fork into background (for use in daemon mode).
| -F || --foreground || Don't fork into background (for use in daemon mode).
|-
|-
| -u USER || --user USER || Run  as  USER. By default (when started by root) freshclam drops privileges and operates as the 'clamav' user.
| -u USER || --user USER || Run  as  USER. By default (when started by root) freshclam drops privileges and operates as the 'clamav' user.
|-
|-
| || --no-dns || This option forces old non-DNS verification method (without a TTL delay).
| || --no-dns || This option forces old non-DNS verification method (without a TTL delay).
|-
|-
| -c #n || --checks=#n || Check #n times per day for a new database. #n must be between 1 and 50.
| -c #n || --checks=#n || Check #n times per day for a new database. #n must be between 1 and 50.
|-
|-
| || --datadir=DIRECTORY || Install new database in DIRECTORY. The directory must be writable for the 'clamav' user or unprivileged user running freshclam.
| || --datadir=DIRECTORY || Install new database in DIRECTORY. The directory must be writable for the 'clamav' user or unprivileged user running freshclam.
Zeile 51: Zeile 51:
| || --daemon-notify=/path/to/clamd.conf || Notify  the daemon about the new database. By default it reads a hardcoded config file but you can use a different one. Both local and TCP sockets  are  supported.
| || --daemon-notify=/path/to/clamd.conf || Notify  the daemon about the new database. By default it reads a hardcoded config file but you can use a different one. Both local and TCP sockets  are  supported.
|-
|-
| -a IP || --local-address=IP || Use  (local)  IP for HTTP downloads. Useful for multi-homed systems. If binding fails for whatever reason, a warning is issued and freshclam behaves like without this flag.
| -a IP || --local-address=IP || Use  (local)  IP for HTTP downloads. Useful for multi-homed systems. If binding fails for whatever reason, a warning is issued and freshclam behaves like without this flag.
|-
|-
| || --on-update-execute=COMMAND || Execute COMMAND after successful update.
| || --on-update-execute=COMMAND || Execute COMMAND after successful update.
Zeile 62: Zeile 62:
|}
|}


== Umgebungsvariablen ==
== Umgebung ==
;CURL_CA_BUNDLE   
;CURL_CA_BUNDLE   
May be set to the path of a file (bundle) containing one or more CA certificates. This will override the default openssl certificate path. Note that the CURL_CA_BUNDLE environment variable is also used by the curl command line tool for the same purpose.
May be set to the path of a file (bundle) containing one or more CA certificates. This will override the default openssl certificate path. Note that the CURL_CA_BUNDLE environment variable is also used by the curl command line tool for the same purpose.




== Exit-Status ==
== Rückgabewert ==
Some return codes of freshclam can be overwritten with a built-in command EXIT_n which can be passed to --on-*-execute, eg. --on-update-execute=EXIT_1 will  force  freshclam to always return 1 after successful database update.
Some return codes of freshclam can be overwritten with a built-in command EXIT_n which can be passed to --on-*-execute, eg. --on-update-execute=EXIT_1 will  force  freshclam to always return 1 after successful database update.


Zeile 109: Zeile 109:
  /usr/local/etc/freshclam.conf
  /usr/local/etc/freshclam.conf


= Anwendungen =
= Anwendung =
== Download database to default directory ==
== Download database to default directory ==
  # '''freshclam'''
  # '''freshclam'''
Zeile 133: Zeile 133:
= Dokumentation =
= Dokumentation =
== RFC ==
== RFC ==
== Man-Pages ==
== Man-Page ==
== Info-Pages ==
== Info-Pages ==
== Projekt-Homepage ==
== Projekt ==


= Links =
= Links =
Zeile 145: Zeile 145:


== Weblinks ==
== Weblinks ==
== Einzelnachweise ==
<references />


= Testfragen =
<div class="toccolours mw-collapsible mw-collapsed">
''Testfrage 1''
<div class="mw-collapsible-content">'''Antwort1'''</div>
</div>
<div class="toccolours mw-collapsible mw-collapsed">
''Testfrage 2''
<div class="mw-collapsible-content">'''Antwort2'''</div>
</div>
<div class="toccolours mw-collapsible mw-collapsed">
''Testfrage 3''
<div class="mw-collapsible-content">'''Antwort3'''</div>
</div>
<div class="toccolours mw-collapsible mw-collapsed">
''Testfrage 4''
<div class="mw-collapsible-content">'''Antwort4'''</div>
</div>
<div class="toccolours mw-collapsible mw-collapsed">
''Testfrage 5''
<div class="mw-collapsible-content">'''Antwort5'''</div>
</div>


[[Kategorie:Sicherheit:Schadsoftware:Scanner]]
 
 
[[Kategorie:ClamAV]]

Aktuelle Version vom 6. November 2024, 12:27 Uhr

freshclam aktualisiert die ClamAV - Datenbank

Beschreibung

freshclam is a virus database update tool for ClamAV

Installation

Syntax

freshclam [options]

Parameter

Optionen

FreshClam reads its configuration from freshclam.conf. The settings can be overwritten with command line options.

Short Long Beschreibung
-h --help Output help information and exit.
-V --version Print version number and exit.
-v --verbose Be verbose. This option causes freshclam to print much additional information.
--debug Enable debug messages from LibClamAV.
--quiet Be quiet - output only error messages.
--no-warnings Don't print and log warnings.
--stdout Write all messages to stdout.
--show-progress Show download progress percentage.
--config-file=FILE Read configuration from FILE.
-l FILE --log=FILE Log report to FILE.
-d --daemon Run in a daemon mode. Defaults to 12 checks per day unless otherwise specified by --checks or freshclam.conf.
-p FILE --pid=FILE Write daemon's pid to FILE.
-F --foreground Don't fork into background (for use in daemon mode).
-u USER --user USER Run as USER. By default (when started by root) freshclam drops privileges and operates as the 'clamav' user.
--no-dns This option forces old non-DNS verification method (without a TTL delay).
-c #n --checks=#n Check #n times per day for a new database. #n must be between 1 and 50.
--datadir=DIRECTORY Install new database in DIRECTORY. The directory must be writable for the 'clamav' user or unprivileged user running freshclam.
--daemon-notify=/path/to/clamd.conf Notify the daemon about the new database. By default it reads a hardcoded config file but you can use a different one. Both local and TCP sockets are supported.
-a IP --local-address=IP Use (local) IP for HTTP downloads. Useful for multi-homed systems. If binding fails for whatever reason, a warning is issued and freshclam behaves like without this flag.
--on-update-execute=COMMAND Execute COMMAND after successful update.
--on-error-execute=COMMAND Execute COMMAND if error occurred. Remember, that virus database freshness is the most important thing in anti-virus system. With this option freshclam can alert you (eg. send SMS) when something is going wrong.
--on-outdated-execute=COMMAND Execute COMMAND when freshclam reports outdated version. In the command string %v will be replaced by the new version number.
--update-db=DBNAME With this option you can limit updates to a subset of database files. The DB‐NAME should be "main", "daily", "bytecode", "safebrowsing" or one of the 3rd party database names. This option can be used multiple times and only works with the official and 3rd party databases distributed through the ClamAV mirrors, your custom databases (specified with DatabaseCustomURL in freshclam.conf) will not be ignored.

Umgebung

CURL_CA_BUNDLE

May be set to the path of a file (bundle) containing one or more CA certificates. This will override the default openssl certificate path. Note that the CURL_CA_BUNDLE environment variable is also used by the curl command line tool for the same purpose.


Rückgabewert

Some return codes of freshclam can be overwritten with a built-in command EXIT_n which can be passed to --on-*-execute, eg. --on-update-execute=EXIT_1 will force freshclam to always return 1 after successful database update.

Status Beschreibung
0 Database is up-to-date or successfully updated.
40 Unknown option passed.
50 Can't change directory.
51 Can't check MD5 sum.
52 Connection (network) problem.
53 Can't unlink file.
54 MD5 or digital signature verification error.
55 Error reading file.
56 Config file error.
57 Can't create new file.
58 Can't read database from remote server.
59 Mirrors are not fully synchronized (try again later).
60 Can't get information about 'clamav' user from /etc/passwd.
61 Can't drop privileges.
62 Can't initialize logger.

Konfiguration

Dateien

/usr/local/etc/freshclam.conf

Anwendung

Download database to default directory

# freshclam
Mon May 16 13:23:54 2022 -> ClamAV update process started at Mon May 16 13:23:54 2022
Mon May 16 13:23:56 2022 -> daily database available for update (local version: 26542, remote version: 26543)
Current database is 1 version behind.
Downloading database patch # 26543...
Time:    0.3s, ETA:    0.0s [========================>]    2.12KiB/2.12KiB
Mon May 16 13:23:56 2022 -> Testing database: '/var/lib/clamav/tmp.2f94ecd969/clamav-0c3b47c0377e3827944de16a4e3d3497.tmp-daily.cld' ...
Mon May 16 13:23:59 2022 -> Database test passed.
Mon May 16 13:23:59 2022 -> daily.cld updated (version: 26543, sigs: 1984431, f-level: 90, builder: raynman)
Mon May 16 13:23:59 2022 -> main.cld database is up-to-date (version: 62, sigs: 6647427, f-level: 90, builder: sigmgr)
Mon May 16 13:23:59 2022 -> bytecode.cld database is up-to-date (version: 333, sigs: 92, f-level: 63, builder: awillia2)
Mon May 16 13:23:59 2022 -> Clamd successfully notified about the update.

Download database to current directory

freshclam --datadir=.

Run as a daemon and check 2 times per day for new database

freshclam -d -c 2

Sicherheit

Dokumentation

RFC

Man-Page

Info-Pages

Projekt

Links

Siehe auch

  1. freshclam.conf(5)
  2. clamd(8)
  3. clamd.conf(5)
  4. clamscan(1)

Weblinks